CVE-2025-23217 - SSRF to Possible Remote Code Execution in mitmweb (mitmproxy <= 11.1.1)
mitmproxy is a popular open-source intercepting proxy, widely used by penetration testers and software developers for troubleshooting and inspecting HTTP/S traffic. It also offers
CVE-2025-0994 - Breaking Down the Remote Code Execution Flaw in Trimble Cityworks – Exploit Details & Simple Walkthrough
Published: June 2024
*Author: Cityworks Security Explorer*
What is CVE-2025-0994?
CVE-2025-0994 is a recently disclosed security vulnerability affecting Trimble Cityworks – a popular enterprise asset management
CVE-2025-25246 - Unauthenticated Remote Code Execution on NETGEAR XR100, XR100v2, and XR500 Routers
Recently, a serious security flaw, CVE-2025-25246, was discovered in several NETGEAR WiFi routers: XR100 (before 1...74), XR100v2 (before 1.1..22), and XR500 (before
CVE-2025-1028 - Remote Code Execution via Arbitrary File Upload in Contact Manager for WordPress (up to 8.6.4)
On June 13, 2024, a serious vulnerability—CVE-2025-1028—was disclosed in the popular “Contact Manager” WordPress plugin, affecting all versions up to, and including, 8.
CVE-2025-24964 - Critical Remote Code Execution in Vitest via Cross-site WebSocket Hijacking
Vitest is a popular testing framework built on top of Vite. With its blazing speed and developer-friendly features, it’s become a go-to choice for
Episode
00:00:00
00:00:00